Category: GBHackers

Threat Actors Exploit Windows and Linux Server Vulnerabilities to Deploy Web Shells
28
Jun
2025

Threat Actors Exploit Windows and Linux Server Vulnerabilities to Deploy Web Shells

Threat actors have been observed exploiting file upload vulnerabilities to deploy web shells and advanced malware on both Windows and…

Beware of Trending TikTok Videos Promoting Pirated Apps That Deliver Stealer Malware
28
Jun
2025

Beware of Trending TikTok Videos Promoting Pirated Apps That Deliver Stealer Malware

A sophisticated social engineering campaign has surfaced on TikTok, leveraging the platform’s massive user base and algorithmic reach to distribute…

Weaponized DeepSeek Installers Deploy Sainbox RAT and Hidden Rootkit
28
Jun
2025

Weaponized DeepSeek Installers Deploy Sainbox RAT and Hidden Rootkit

Netskope Threat Labs has uncovered a malicious campaign exploiting fake software installers, including those mimicking popular tools like DeepSeek, Sogou,…

Cybercriminals Exploit CapCut Popularity to Steal Apple ID Credentials and Credit Card Data
28
Jun
2025

Cybercriminals Exploit CapCut Popularity to Steal Apple ID Credentials and Credit Card Data

Threat actors have capitalized on the immense popularity of CapCut, the leading short-form video editing app, to orchestrate a highly…

Threat Actors Use Clickfix Tactics to Deploy Malicious AppleScripts for Stealing Login Credentials
28
Jun
2025

Threat Actors Use Clickfix Tactics to Deploy Malicious AppleScripts for Stealing Login Credentials

A sophisticated malware campaign dubbed Odyssey Stealer has been uncovered, targeting macOS users through a deceptive method known as Clickfix…

Malicious Passlib Python Package Triggers Windows Shutdowns with Invalid Inputs
28
Jun
2025

Malicious Passlib Python Package Triggers Windows Shutdowns with Invalid Inputs

A deceptive and destructive Python package named psslib, uncovered by Socket’s Threat Research Team, poses a severe risk to developers…

Exploitation of Microsoft 365 Direct Send to Deliver Phishing Emails as Internal Users
28
Jun
2025

Exploitation of Microsoft 365 Direct Send to Deliver Phishing Emails as Internal Users

A sophisticated phishing campaign targeting over 70 organizations, predominantly in the US, has been uncovered by Varonis’ Managed Data Detection…

Threat Actors Use Clickfix Tactics to Deploy Malicious AppleScripts for Stealing Login Credentials
27
Jun
2025

Threat Actors Use Clickfix Tactics to Deploy Malicious AppleScripts for Stealing Login Credentials

In a recent discovery by the CYFIRMA research team, a sophisticated malware campaign dubbed Odyssey Stealer has been uncovered, targeting…

Threat Actors Leverage Windows Task Scheduler to Embed Malware and Maintain Persistence
27
Jun
2025

Threat Actors Leverage Windows Task Scheduler to Embed Malware and Maintain Persistence

A comprehensive follow-up analysis to the FortiGuard Incident Response Team’s (FGIR) investigation titled “Intrusion into Middle East Critical National Infrastructure”…

Hunt Electronic DVR Vulnerability Leaves Admin Credentials Unprotected
27
Jun
2025

Hunt Electronic DVR Vulnerability Leaves Admin Credentials Unprotected

A newly disclosed critical vulnerability in Hunt Electronics’ hybrid DVRs has left thousands of surveillance systems dangerously exposed, with administrator…

Hawaiian Airlines Targeted in Cyberattack, Systems Compromised
27
Jun
2025

Hawaiian Airlines Targeted in Cyberattack, Systems Compromised

Hawaiian Airlines is responding to a significant cybersecurity incident that has disrupted parts of its information technology infrastructure, the company…

Leeds United And Reflectiz Partner To Share Insights On Proactive Web Security After Cyber Attack
27
Jun
2025

Leeds United And Reflectiz Partner To Share Insights On Proactive Web Security After Cyber Attack

Leeds, UK, June 27th, 2025, CyberNewsWire – Leeds United FC, a globally recognized football club, and Reflectiz, a leading provider…